You just have to enter your nsec once in the extension. After that you can log into any Nostr WebApp; you just get the popup for approval.
Discussion
Thank you all for your patience 🙏
So browser extension is safer to use than putting nsec directly in client, because the author of the extension can not access your key (why not? We are trusting them to not put a back door in their extension and access my nsec?)
Versus putting the nsec in the client which is less safe. (author of the client is less trustworthy than the author of the browser extension?)
It's all software, so aren't we trusting someone in each case?
Suppose there are 10 Nostr WebApps; you can't trust all of those apps, and entering your private key inside a browser every time you log into some WebApp is inherently unsafe.
Since the extension is already open source, you are not placing trust in anyone and please backup your nsec, this is the only way you can access your account.
Got it. Thank you. 🙏
I'll zap you once I get my wallet fixed.